Wp Custom Fields Search@* Security Vulnerabilities and Issues — Wp Custom Fields Search@* CVE List

Lucene search

WebhammerWp Custom Fields Search*

2 matches found

CVE•added 2023/05/18 11:15 a.m.•38 views

CVE-2022-47157

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Don Benjamin WP Custom Fields Search plugin

5.9CVSS4.9AI score0.00049EPSS

CVE•added 2024/09/19 4:15 a.m.•36 views

CVE-2024-8364

The WP Custom Fields Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpcfs-preset shortcode in all versions up to, and including, 1.2.35 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authe...

6.4CVSS5.5AI score0.00446EPSS